intranet.ais.uni-bonn.de

- Rheinische Friedrich-Wilhelms-Universitaet Bonn -

Issued by DFN-Verein Global Issuing CA

About this certificate

This digital certificate with serial number 21:33:e4:e0:66:57:3c:f2:37:dc:34:04 was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Rheinische Friedrich-Wilhelms-Universitaet Bonn

Organization: Rheinische Friedrich-Wilhelms-Universitaet Bonn
Organization unit: Autonomous Intelligent Systems
State / Province: Nordrhein-Westfalen
Locality: Bonn
Country: DE

Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.

Organization: Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Country: DE

This certificate has expire since

Certificate Details

Serial Number (hex): 21:33:e4:e0:66:57:3c:f2:37:dc:34:04
Serial Number (int): 10275741379907930071735481348
Serial Number lenght: 94 bits, 12 octets

SubjectKeyId: 2e:00:96:9d:2a:5d:c1:8d:a6:38:65:d0:78:7f:4a:a4:bd:99:57:9e
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74

Fingerprint (sha1): dc:9e:df:4b:00:ea:b1:c2:5b:27:13:5c:b7:0b:29:93:a3:c8:3e:08
Fingerprint (sha256): 02:0e:40:2e:6c:f1:e1:35:66:95:9b:cd:ed:cd:d4:a8:0a:5c:b0:29:3a:71:eb:21:bc:54:18:c3:1a:f6:63:75

Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt

Revocation information

OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSP
CRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl

Check the revocation status for certificate intranet.ais.uni-bonn.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for intranet.ais.uni-bonn.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

intranet.ais.uni-bonn.de

Other certificates including the domain name uni-bonn.de

(limited to 100 certificates)
bbbfallback.informatik.uni-bonn.de
weblogin.physik.uni-bonn.de
iweb.meb.uni-bonn.de
www.tumorzentrum-bonn.de
gitlab.geo.uni-bonn.de
agp-vpn.rhrz.uni-bonn.de
www.vorklinikstage.uni-bonn.de
ems.math.uni-bonn.de
vpn-test.rhrz.uni-bonn.de
fdi-s3.uni-bonn.de
container-registry.hrz.uni-bonn.de
merry.ulb.uni-bonn.de
wiki.zem.uni-bonn.de
zveshop.verwaltung.uni-bonn.de
ins.uni-bonn.de
www.bonngutstage.uni-bonn.de
ortsnc.verwaltung.uni-bonn.de
cytometry.uni-bonn.de
trave.math.uni-bonn.de
bonfor.uni-bonn.de
xerox-og.meteo.uni-bonn.de
www1.hiskp.uni-bonn.de
ova-vpn.ova.uni-bonn.de
intranet.ais.uni-bonn.de
sp.uni-bonn.de
iweb.meb.uni-bonn.de
cens.uni-bonn.de
slk.informatik.uni-bonn.de
peene.math.uni-bonn.de
www.arithmeum.uni-bonn.de
mail.uni-bonn.de
gosa-dev.gosa.uni-bonn.de
www.bonngutstage.uni-bonn.de
webconf.meteo.uni-bonn.de
www.lms.uni-bonn.de
cytometry-ldap.uni-bonn.de
ad1.iai.uni-bonn.de
userserver.informatik.uni-bonn.de
hio-web-test.uni-bonn.de
proxmox-info4.cs.uni-bonn.de
chat.zem.uni-bonn.de
bbbfallback.informatik.uni-bonn.de
www.uni-bonn.de
sympa.vi.cs.uni-bonn.de
ea-author.rhrz.uni-bonn.de
cores.ukb.uni-bonn.de
web3.physik.uni-bonn.de
jester.uni-bonn.de
www.zhf.uni-bonn.de
confluence.bzh.uni-bonn.de
ad0.iai.uni-bonn.de
docs.physik.uni-bonn.de
www.lateinamerikazentrumstage.uni-bonn.de
k8stest-sealed-secrets.uni-bonn.de
agthoma.hiskp.uni-bonn.de
www.mnfstage.uni-bonn.de
styx.asta.uni-bonn.de
lwf-vpn.rhrz.uni-bonn.de
wiki.physik.uni-bonn.de
jhub.physik.uni-bonn.de
sms.wiwi.uni-bonn.de
csengine-test.rhrz.uni-bonn.de
mailer.ukb.uni-bonn.de
portal.grade-rc.de
imbie.meb.uni-bonn.de
admin-wiki.home.ins.uni-bonn.de
www.arithmeum.uni-bonn.de
prb.verwaltung.uni-bonn.de
butterbur05.iai.uni-bonn.de
www.or.uni-bonn.de
prb.verwaltung.uni-bonn.de
merry.ulb.uni-bonn.de
cores.ukb.uni-bonn.de
tools.net.cs.uni-bonn.de
warnow.math.uni-bonn.de
v-for1.ilb.uni-bonn.de
mail.ins.uni-bonn.de
www.uni-bonn.de
www.versoehnungstage.uni-bonn.de
www1.hiskp.uni-bonn.de
mx.hiskp.uni-bonn.de
sentry.hive.cs.uni-bonn.de
drze-vpn.rhrz.uni-bonn.de
www.philfak.uni-bonn.de
wahlen.uni-bonn.de
hicap.uni-bonn.de
pi01.hrz.uni-bonn.de
portal.grade-rc.de
intern.hrz.uni-bonn.de
warnow.math.uni-bonn.de
kata.doelger.uni-bonn.de
butterbur01.iai.uni-bonn.de
smtpclient-sol.iai.uni-bonn.de
ems.math.uni-bonn.de
smtpub.iai.uni-bonn.de
gast-bonnet4.uni-bonn.de
hcm.uni-bonn.de
tm.verwaltung.uni-bonn.de
rds-sap.verwaltung.uni-bonn.de
www.cb.uni-bonn.de

Certificate

The complete raw certificate details for intranet.ais.uni-bonn.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIpAhkJVRIP9+TQgWjKl
KIJhUuzavsB1yoWtC8Jx51LzICymLeLLI9HunmTmrINR8eG2LQsPdFW7Pd/GG9KI
arkF/rppjHhjSxn3URkIXBIYLLrUnUyNm/5DgocQ3LiuBfspGn9RLEKCXGgmVcKl
oe9b8Q4c99vq/tMNvrMac+g6lm9eh2XCgWfLOV5/hkzmpF+GhS2i39g3LZ5lkOyB
5my/oNvG+BlF54KBvAGJcNUeQnCKV1by+c+kbUMnIMMXkYSH/zweTHNuFua3n3rp
l1AEC3Y3DqmtRpl0D4i869CXdVR113aSQYS+wEDH9EfBsrHChuXJ21tUdWOYhuT+
QQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 10275741379907930071735481348
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-27 06:51:01 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-28 06:51:01 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nordrhein-Westfalen'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bonn'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Rheinische Friedrich-Wilhelms-Universitaet Bonn'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Autonomous Intelligent Systems'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'intranet.ais.uni-bonn.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24305929179566555819944378044788747460151537287295507440680191064960726008591920630977164872921139598115396655654930279958653694612640077146784224534138944033150531483071741244643248572745341430772912689564706999935611303838746572049964831319986026570076584453855519881805306003475113251968551657340608766302979738258148638937441188793216466140264026143573981303924608206419772607849695062392407670769698312338969029255097166001165134328791569431869865434208895145190041263482421852983328156698746798008236242933788019462761874979220537385059313591752164199783914771026315084714980985921865094388147910142751800622657
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2e00969d2a5dc18da63865d0787f4aa4bd99579e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intranet.ais.uni-bonn.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (845 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (841 bytes)
							03470075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016b97b3b0a3000004030046304402204435244964c9ed5cb78a0b56837a4b02b1d206cace53404426d79982cf6fde26022078a580502df43476ec9c08678e8a3e38e0256d4dfde22ab3efe03cb051a9ddd4007600aae70b7f3cb8d566c86c2f16979c9f445f69ab0eb4535589b2f77a030104f3cd0000016b97b3b0af000004030047304502201bd98004207033df3e3469d295a00d842609cb7eda3fc2fceb55df9be3266594022100dd8e88567c2baced6fc0fc103f9e4a4d108881a96fe403b798c9bcced9f588b10076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c0000016b97b3b1a0000004030047304502207bdb85e8aee5540cebc70bd792237ea70951196d106e38b8b8c2c3b770ee61960221008f1a72f0131239515eaef008a5b81954bfa7be901ace523c25caf641512ec228007500ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000016b97b3b0f6000004030046304402202bdffc5fd61c5b0f0ce0325222f43c9cb04b7df5e35b59967935797b69f3d0890220486588285c4f805f373b99b9bddd0cf59a8cef2b3c13992007a4bc83c25afdea007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016b97b3b0f100000403004730450220728a6a2c8c44bf155bf39f120c93ea9d51ba7db699576c2cdf8e3416b17c2556022100b0f25d8e48fa4e63aa52ae3ae00988e8666c7ac0a27c85d0efe8d4127034431a0077004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000016b97b3b5990000040300483046022100fa22307458c4439d6d6ab8428739e863d100aa9a1a5d6a27a0afb9fbc80c29e1022100d33b61f605cd7bf34890ac4334c5c5a5ea9d5bfbff70e1d871ee3a8e14a33070007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016b97b3b0f00000040300473045022100b0e9e38b94b237226c9ea84584a540b9966ff0387b0fd44d49639db28853761502202ed4fa514655007e13b732c07d3e35ebdb68c84821ae96e95118615ce431aafe
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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